From: David Howells <dhowells@redhat.com>
To: linux-security-module@vger.kernel.org
Subject: Re: [PATCH v2] KEYS: Convert KEYCTL_DH_COMPUTE to use the crypto KPP API
Date: Fri, 02 Jun 2017 15:58:22 +0000 [thread overview]
Message-ID: <1638.1496419102@warthog.procyon.org.uk> (raw)
In-Reply-To: <20170511003557.3467-1-mathew.j.martineau@linux.intel.com>
Mat Martineau <mathew.j.martineau@linux.intel.com> wrote:
> The initial Diffie-Hellman computation made direct use of the MPI
> library because the crypto module did not support DH at the time. Now
> that KPP is implemented, KEYCTL_DH_COMPUTE should use it to get rid of
> duplicate code and leverage possible hardware acceleration.
This doesn't apply to linus/master. I've pushed the keyrings fix patches I
have, including a bunch from Eric Biggers that fix DH stuff, to:
https://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git
branch:
keys-fixes
though I think there may be a couple of bugs in on of Eric's patches where
he's assumed that he can do:
memzero_explicit(NULL, 0);
I'm not sure whether it's permissible to assume that memset(NULL, 0, 0) is
guaranteed to work correctly.
Note that I haven't included Eric's DH patch that was obsoleted by Stephan's
patch that was obsoleted by this one.
David
WARNING: multiple messages have this Message-ID (diff)
From: dhowells@redhat.com (David Howells)
To: linux-security-module@vger.kernel.org
Subject: [PATCH v2] KEYS: Convert KEYCTL_DH_COMPUTE to use the crypto KPP API
Date: Fri, 02 Jun 2017 16:58:22 +0100 [thread overview]
Message-ID: <1638.1496419102@warthog.procyon.org.uk> (raw)
In-Reply-To: <20170511003557.3467-1-mathew.j.martineau@linux.intel.com>
Mat Martineau <mathew.j.martineau@linux.intel.com> wrote:
> The initial Diffie-Hellman computation made direct use of the MPI
> library because the crypto module did not support DH at the time. Now
> that KPP is implemented, KEYCTL_DH_COMPUTE should use it to get rid of
> duplicate code and leverage possible hardware acceleration.
This doesn't apply to linus/master. I've pushed the keyrings fix patches I
have, including a bunch from Eric Biggers that fix DH stuff, to:
https://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git
branch:
keys-fixes
though I think there may be a couple of bugs in on of Eric's patches where
he's assumed that he can do:
memzero_explicit(NULL, 0);
I'm not sure whether it's permissible to assume that memset(NULL, 0, 0) is
guaranteed to work correctly.
Note that I haven't included Eric's DH patch that was obsoleted by Stephan's
patch that was obsoleted by this one.
David
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
next parent reply other threads:[~2017-06-02 15:58 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <20170511003557.3467-1-mathew.j.martineau@linux.intel.com>
2017-06-02 15:58 ` David Howells [this message]
2017-06-02 15:58 ` [PATCH v2] KEYS: Convert KEYCTL_DH_COMPUTE to use the crypto KPP API David Howells
2017-06-04 15:38 ` Stephan Müller
2017-06-04 15:38 ` Stephan Müller
2017-06-05 10:03 ` David Howells
2017-06-05 10:03 ` David Howells
2017-06-05 3:41 ` Eric Biggers
2017-06-05 21:51 ` Stephan Müller
2017-06-05 22:03 ` Eric Biggers
2017-06-06 0:16 ` Mat Martineau
2017-06-06 0:33 ` Mat Martineau
2017-06-06 0:33 ` Mat Martineau
2017-06-07 16:58 ` Mat Martineau
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1638.1496419102@warthog.procyon.org.uk \
--to=dhowells@redhat.com \
--cc=linux-security-module@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.